Denial of Service Vulnerability in IBM BladeCenter SAS Connectivity and RAID Modules
CVE-2014-3018

Currently unrated

Key Information:

Vendor: IBM
Status: Sas Raid Module Firmware
Vendor: CVE Published:; 17 January 2015

What is CVE-2014-3018?

The IBM BladeCenter SAS Connectivity Module and SAS RAID Module prior to version 1.3.3.006 are susceptible to a denial of service attack. This vulnerability allows remote attackers to disrupt normal operations by flooding the affected modules with excessive IP packets, potentially causing a reboot and leading to loss of service. Organizations using these modules are advised to implement the latest patches to safeguard against this vulnerability and ensure uninterrupted performance.

References

http://www.ibm.com/support/entry/portal/docdisplay?lndoci...

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/93052

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 17, 2015
Vulnerability Reserved
Apr 29, 2014